Description
An issue was discovered in MediaWiki through 1.37.1. The CentralAuth extension mishandles a ttl issue for groups expiring in the future.
Remediation
References
Related Vulnerabilities
WordPress Plugin Correos Woocommerce Arbitrary File Download (1.3.0.0)
WordPress Plugin A2 Optimized WP Information Disclosure (2.0.10.8)
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-11111)
WordPress Plugin Gallery for Social Photo Cross-Site Request Forgery (1.0.0.27)
WordPress Plugin YARPP-Yet Another Related Posts SQL Injection (5.30.2)